We use cookies to ensure you get the best experience on our website
Почетна Преглед Помоћ
Регистрација Пријавите се
0ct0pu5
/
standardnotes-server
1
0
Креирај огранак 0
Датотеке Дискусије 0 Захтеви за спајање 0 Вики
Дрво: d44866b3c0
Гране Ознаке
standardnotes-s...
/
packages
/
auth
/
src
/
Infra
/
InversifyExpressUtils
/
Base
/
BaseSessionController.ts

BaseSessionController.ts 4.2 KB
Историја Датотека

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160 
  1. import { ControllerContainerInterface } from '@standardnotes/domain-core'
    2. 

  2. import { Request, Response } from 'express'
    3. 

  3. import { BaseHttpController, results } from 'inversify-express-utils'
    4. 

  4. import { ErrorTag } from '@standardnotes/responses'
    5. 

  5. 

  6. import { DeleteOtherSessionsForUser } from '../../../Domain/UseCase/DeleteOtherSessionsForUser'
    7. 

  7. import { DeleteSessionForUser } from '../../../Domain/UseCase/DeleteSessionForUser'
    8. 

  8. import { RefreshSessionToken } from '../../../Domain/UseCase/RefreshSessionToken'
    9. 

  9. import { ResponseLocals } from '../ResponseLocals'
    10. 

  10. 

  11. export class BaseSessionController extends BaseHttpController {
    12. 

  12.   constructor(
    13. 

  13.     protected deleteSessionForUser: DeleteSessionForUser,
    14. 

  14.     protected deleteOtherSessionsForUser: DeleteOtherSessionsForUser,
    15. 

  15.     protected refreshSessionToken: RefreshSessionToken,
    16. 

  16.     private controllerContainer?: ControllerContainerInterface,
    17. 

  17.   ) {
    18. 

  18.     super()
    19. 

  19. 

  20.     if (this.controllerContainer !== undefined) {
    21. 

  21.       this.controllerContainer.register('auth.sessions.delete', this.deleteSession.bind(this))
    22. 

  22.       this.controllerContainer.register('auth.sessions.deleteAll', this.deleteAllSessions.bind(this))
    23. 

  23.       this.controllerContainer.register('auth.sessions.refresh', this.refresh.bind(this))
    24. 

  24.     }
    25. 

  25.   }
    26. 

  26. 

  27.   async deleteSession(request: Request, response: Response): Promise<results.JsonResult | results.StatusCodeResult> {
    28. 

  28.     const locals = response.locals as ResponseLocals
    29. 

  29. 

  30.     if (locals.readOnlyAccess) {
    31. 

  31.       return this.json(
    32. 

  32.         {
    33. 

  33.           error: {
    34. 

  34.             tag: ErrorTag.ReadOnlyAccess,
    35. 

  35.             message: 'Session has read-only access.',
    36. 

  36.           },
    37. 

  37.         },
    38. 

  38.         401,
    39. 

  39.       )
    40. 

  40.     }
    41. 

  41. 

  42.     if (!request.body.uuid || !locals.session) {
    43. 

  43.       return this.json(
    44. 

  44.         {
    45. 

  45.           error: {
    46. 

  46.             message: 'Please provide the session identifier.',
    47. 

  47.           },
    48. 

  48.         },
    49. 

  49.         400,
    50. 

  50.       )
    51. 

  51.     }
    52. 

  52. 

  53.     if (request.body.uuid === locals.session.uuid) {
    54. 

  54.       return this.json(
    55. 

  55.         {
    56. 

  56.           error: {
    57. 

  57.             message: 'You can not delete your current session.',
    58. 

  58.           },
    59. 

  59.         },
    60. 

  60.         400,
    61. 

  61.       )
    62. 

  62.     }
    63. 

  63. 

  64.     const useCaseResponse = await this.deleteSessionForUser.execute({
    65. 

  65.       userUuid: locals.user.uuid,
    66. 

  66.       sessionUuid: request.body.uuid,
    67. 

  67.     })
    68. 

  68. 

  69.     if (!useCaseResponse.success) {
    70. 

  70.       return this.json(
    71. 

  71.         {
    72. 

  72.           error: {
    73. 

  73.             message: useCaseResponse.errorMessage,
    74. 

  74.           },
    75. 

  75.         },
    76. 

  76.         400,
    77. 

  77.       )
    78. 

  78.     }
    79. 

  79. 

  80.     response.setHeader('x-invalidate-cache', locals.user.uuid)
    81. 

  81. 

  82.     return this.statusCode(204)
    83. 

  83.   }
    84. 

  84. 

  85.   async deleteAllSessions(
    86. 

  86.     _request: Request,
    87. 

  87.     response: Response,
    88. 

  88.   ): Promise<results.JsonResult | results.StatusCodeResult> {
    89. 

  89.     const locals = response.locals as ResponseLocals
    90. 

  90. 

  91.     if (locals.readOnlyAccess) {
    92. 

  92.       return this.json(
    93. 

  93.         {
    94. 

  94.           error: {
    95. 

  95.             tag: ErrorTag.ReadOnlyAccess,
    96. 

  96.             message: 'Session has read-only access.',
    97. 

  97.           },
    98. 

  98.         },
    99. 

  99.         401,
    100. 

  100.       )
    101. 

  101.     }
    102. 

  102. 

  103.     if (!locals.user || !locals.session) {
    104. 

  104.       return this.json(
    105. 

  105.         {
    106. 

  106.           error: {
    107. 

  107.             message: 'No session exists with the provided identifier.',
    108. 

  108.           },
    109. 

  109.         },
    110. 

  110.         401,
    111. 

  111.       )
    112. 

  112.     }
    113. 

  113. 

  114.     await this.deleteOtherSessionsForUser.execute({
    115. 

  115.       userUuid: locals.user.uuid,
    116. 

  116.       currentSessionUuid: locals.session.uuid,
    117. 

  117.       markAsRevoked: true,
    118. 

  118.     })
    119. 

  119. 

  120.     response.setHeader('x-invalidate-cache', locals.user.uuid)
    121. 

  121. 

  122.     return this.statusCode(204)
    123. 

  123.   }
    124. 

  124. 

  125.   async refresh(request: Request, response: Response): Promise<results.JsonResult> {
    126. 

  126.     if (!request.body.access_token || !request.body.refresh_token) {
    127. 

  127.       return this.json(
    128. 

  128.         {
    129. 

  129.           error: {
    130. 

  130.             message: 'Please provide all required parameters.',
    131. 

  131.           },
    132. 

  132.         },
    133. 

  133.         400,
    134. 

  134.       )
    135. 

  135.     }
    136. 

  136. 

  137.     const result = await this.refreshSessionToken.execute({
    138. 

  138.       accessToken: request.body.access_token,
    139. 

  139.       refreshToken: request.body.refresh_token,
    140. 

  140.       userAgent: <string>request.headers['user-agent'],
    141. 

  141.     })
    142. 

  142. 

  143.     if (!result.success) {
    144. 

  144.       return this.json(
    145. 

  145.         {
    146. 

  146.           error: {
    147. 

  147.             tag: result.errorTag,
    148. 

  148.             message: result.errorMessage,
    149. 

  149.           },
    150. 

  150.         },
    151. 

  151.         400,
    152. 

  152.       )
    153. 

  153.     }
    154. 

  154. 

  155.     response.setHeader('x-invalidate-cache', result.userUuid as string)
    156. 

  156.     return this.json({
    157. 

  157.       session: result.sessionPayload,
    158. 

  158.     })
    159. 

  159.   }
    160. 

  160. }
    161.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5